LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - Server (https://www.linuxquestions.org/questions/linux-server-73/)
-   -   SSL Certs for Squid (https://www.linuxquestions.org/questions/linux-server-73/ssl-certs-for-squid-4175530838/)

!! hack-back !! 01-12-2015 09:58 PM

SSL Certs for Squid
 
oes anyone know how to configure an SSL cert with GoDaddy/digicert/comodo/? or any other CA trusted company.?
i generate the CSR and got the certificate from CA but when i put it in squid.conf with key like this way

https_port 3127 intercept ssl-bump generate-host-certificates=on dynamic_cert_mem_cache_size=4MB cert=/etc/squid/ssl_cert/CA.pem key=/etc/squid/ssl_cert/testkey.pem

the command i used is

openssl req -newkey rsa:1024 -keyout testkey.pem -keyform PEM -out testreq.pem -outform PEM -nodes

but after i start squid and open any https site i got this error in firefox

Error code: sec_error_inadequate_key_usage

pingu 01-14-2015 02:22 PM

Is your certificate really named "CA.pem"? That is normally the name of the Certificate Authorities certificate, a cert that confirms your certificates authenticity.

Check carefully what you got from your certificate issuer.


All times are GMT -5. The time now is 01:27 PM.